P
US10679201B2ActiveUtilityPatentIndex 49

Personal point of sale (pPOS) device that provides for card present E-commerce transaction

Assignee: NXP BVPriority: Nov 4, 2016Filed: Nov 4, 2016Granted: Jun 9, 2020
Est. expiryNov 4, 2036(~10.3 yrs left)· nominal 20-yr term from priority
Inventors:NUZUM TODD RAYMONDHUNTER MELISSA ASNELL DEREK ALANPALLIPARAMBIL SURESHCOMISKEY PATRICK RYANDOW MICHAEL
G06Q 20/3226G06Q 20/327G06Q 20/34G06Q 20/204G06Q 20/341G06Q 20/322G06Q 20/352G06Q 20/12G06Q 20/40145G06Q 20/3829G06Q 20/4016G06Q 20/3227G07F 7/0886G06Q 20/401G06Q 20/3278
49
PatentIndex Score
1
Cited by
81
References
28
Claims

Abstract

Within the EMV payment specification, the use of an unattended terminal to accept a payment is allowed. Creating a device that has both the EMV level 1 (L1) and level 2 (L2) payment components combined with a virtual merchant creates a “card present” transaction for an on-line or e-commerce merchant. This device can be called a personal Point of Sale (pPOS). This specification discloses personal Point of Sale (pPOS) devices and methods that can provide for card present e-commerce transactions. In some embodiments, a pPOS device can include only a secure microcontroller function (MCF), a payment kernel, a secure element, and an interface to an external system with an EMV level 3 (L3) payment application. In some embodiments, a pPOS device can further include a reader. In some embodiments, a pPOS device can still further include a sensor switch and/or a user interface function.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A device for providing a personal point of sale (pPOS) for card present e-commerce transactions, the device comprising:
 a secure microcontroller function (MCF); 
 a reader, the reader configured to read a payment and/or identity instrument; 
 a payment kernel, the payment kernel configured to process payment, wherein the payment kernel is contained in the secure microcontroller function (MCF); 
 a secure element, the secure element configured to store and execute a payment application, an identification application, and customer validation methods (CVM) for a user of the device; 
 a first interface for directly connecting the reader to the secure element to allow processing of payment and authentication of a card by the secure element being read by the reader; 
 a sensor switch, the sensor switch configured to initiate and/or terminate a transaction; and 
 a second interface for directly connecting the secure element to the sensor switch to allow collection by the sensor switch of user biometric data. 
 
     
     
       2. The device of  claim 1 , wherein the secure MCF is configured to provide application and data level encryption and hardware/software tamper detection. 
     
     
       3. The device of  claim 1 , wherein the reader is a certified EMV level 1 contact and/or contact less reader, wherein EMV stands for Europay, MasterCard, and Visa. 
     
     
       4. The device of  claim 3 , wherein an antenna of the reader is enabled in a pPOS device enclosure, stand alone, or integrated into an external device, wherein the external device is one of the following:
 a wireless charging device, 
 a WiFi (wireless local area network) communication device, 
 a Bluetooth or Bluetooth low energy communication device, 
 a near field magnetic induction (NFMI) communication device, 
 a cellular communication device. 
 
     
     
       5. The device of  claim 1 , wherein the user allows the payment kernel to be configured by a merchant and/or merchant acquirer for a merchant payment or a user authentication transaction. 
     
     
       6. The device of  claim 5 , wherein: the payment kernel is EMV level 2 certified for contact and/or contact less transaction, wherein EMV stands for Europay, MasterCard, and Visa. 
     
     
       7. The device of  claim 1 , wherein the secure element is configured to execute:
 a secure element application that is used for payment and/or authentication. 
 
     
     
       8. The device of  claim 1 , wherein the sensor switch is further configured to collect user authentication data and notify the user of a device status. 
     
     
       9. The device of  claim 1  further comprising a user interface function, the user interface function providing a status of the device and a state of the transaction, wherein the user interface function uses one or more of the following interfaces:
 a visual display, 
 a light, 
 a series of lights, 
 an audio interface, 
 a haptics interface. 
 
     
     
       10. The device of  claim 1 , wherein the secure MCF and/or a second MCF is configured to perform I/O (input/output) functions. 
     
     
       11. The device of  claim 7 , wherein the secure element application performs authentication using a multi-factor authentication method. 
     
     
       12. The device of  claim 8 ,
 wherein the sensor switch comprises a biometric sensor, 
 wherein the biometric sensor is used to collect the user biometric data for enrollment and authentication of:
 the user of the device, and/or 
 the transaction from the device to a merchant and/or a merchant acquirer. 
 
 
     
     
       13. The device of  claim 12 , wherein the biometric data is managed by the user of the device. 
     
     
       14. The device of  claim 8 ,
 wherein the sensor switch comprises a touch sensor, 
 wherein the touch sensor is used to collect user created data for enrollment and authentication of:
 the user of the device, and/or 
 the transaction from the device to a merchant and/or a merchant acquirer. 
 
 
     
     
       15. The device of  claim 14 , wherein a touch pattern is managed by the user of the device. 
     
     
       16. The device of  claim 7 , wherein the secure element is further configured to execute:
 a second secure element application that is used for customer biometric storage and validation. 
 
     
     
       17. The device of  claim 10 , wherein the secure MCF and/or the second MCF is configured to perform I/O (input/output) functions with a certified EMV level 3 (L3) payment application, wherein EMV stands for Europay, MasterCard, and Visa. 
     
     
       18. The device of  claim 17 , wherein the secure MCF and/or the second MCF is configured to perform I/O (input/output) functions with the certified EMV level 3 (L3) payment application using one or more of the following:
 USB (Universal Serial Bus), 
 audio jack, 
 Bluetooth, 
 WiFi (wireless local area network), 
 NFC (near field communication), 
 near field magnetic induction (NFMI) communication, 
 a remote MCF, 
 any computer network. 
 
     
     
       19. The device of  claim 1 , wherein a customer initiates the transaction by presenting the payment and/or identity instrument to the device. 
     
     
       20. The device of  claim 19 , wherein the identity instrument enables authentication of a user and is comprised of one or more of the following:
 a face of the user, 
 a finger of the user, 
 a fingerprint of the user, 
 an iris of the user, 
 a voice of the user, 
 a heart rhythm of the user, 
 a physical attribute of the user. 
 
     
     
       21. The device of  claim 1 , wherein a merchant initiates the transaction from an external system that requires a payment and/or authentication from the user. 
     
     
       22. A method for providing a personal point of sale (pPOS) for card present e-commerce transactions, the method comprising:
 initiating, by a user and/or a merchant, a request for a payment transaction; 
 presenting, by the user, an instrument to a pPOS device, wherein no instrument data is entered into a website, a web page, or a mobile application; 
 authenticating and validating, by the pPOS device, the instrument for the merchant and/or an issuer of the instrument; 
 storing, in a secure element, a payment application, an identification application, and customer validation methods (CVM) for the user of the device; 
 directly interfacing the secure element to a sensor switch to collect and store biometric data; 
 directly interfacing a reader to the secure element to allow processing of payment and authentication of a card being read of the reader; 
 processing, by the pPOS device, the payment transaction, 
 wherein the pPOS device comprises a secure microcontroller function (MCF) and a payment kernel, 
 wherein the payment kernel is configured to process payment, wherein the payment kernel is contained in the secure microcontroller function (MCF). 
 
     
     
       23. The method of  claim 22 , wherein the instrument is:
 a payment instrument, and/or 
 an identity instrument. 
 
     
     
       24. The method of  claim 23 , wherein the payment instrument is comprised of one or more of the following:
 a card form factor, 
 a mobile phone, 
 a wearable. 
 
     
     
       25. The method of  claim 23 , wherein the identity instrument is comprised of one or more of the following:
 a face of the user, 
 a finger of the user, 
 a fingerprint of the user, 
 an iris of the user, 
 a voice of the user, 
 a heart rhythm of the user, 
 a physical attribute of the user. 
 
     
     
       26. A device comprising:
 a secure microcontroller function (MCF); 
 a payment kernel, the payment kernel configured to process payment, wherein the payment kernel is contained in the secure microcontroller function (MCF); 
 a secure element, the secure element configured to store and execute a payment application and an identification application; 
 a first interface for directly connecting a card reader to the secure element to allow processing of payment and authentication by the secure element of a card being read by the card reader; 
 a sensor switch, the sensor switch configured to initiate and terminate a transaction; and 
 a second interface for directly connecting the secure element to the sensor switch to allow collection of user biometric data by the sensor switch. 
 
     
     
       27. The device of  claim 26 , wherein the secure MCF and/or a second MCF is configured to perform I/O (input/output) functions. 
     
     
       28. The device of  claim 27 , wherein the secure MCF and/or the second MCF is configured to perform I/O (input/output) functions with
 a certified EMV level 3 (L3) payment application, wherein EMV stands for Europay, MasterCard, and Visa.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.